public-webappsec@w3.org from July 2013 by subject

[webappsec + webapps] CORS to PR plans

• Arthur Barstow (Thursday, 18 July)
• Anne van Kesteren (Wednesday, 17 July)
• Brad Hill (Tuesday, 16 July)

[webappsec] Agenda for 2-July-2013 teleconference

• Brad Hill (Monday, 1 July)

[webappsec] Proposed Agenda for 16-Jul-2013 Teleconference

• Brad Hill (Tuesday, 16 July)
• Brad Hill (Tuesday, 16 July)

[webappsec] Reminder: no call this week

• Brad Hill (Monday, 29 July)

Content Security Policy reports in Google+

• Henry Wong (Monday, 22 July)
• Mike West (Monday, 22 July)

Content Security Policy: inline style blocking, CSSOM and unsafe-eval

• Brad Hill (Wednesday, 3 July)

CSP 1.1: Nonce-source and unsafe-inline

• Neil Matatall (Tuesday, 23 July)
• Danesh Irani (Tuesday, 23 July)
• Neil Matatall (Sunday, 21 July)
• Daniel Veditz (Sunday, 21 July)
• Garrett Robinson (Friday, 19 July)
• Danesh Irani (Wednesday, 17 July)

Proposal for script-hash directive in CSP 1.1

• Neil Matatall (Tuesday, 2 July)
• Brad Hill (Tuesday, 2 July)
• Neil Matatall (Tuesday, 2 July)

SEC Consult's "CSP Bypasses"

• Devdatta Akhawe (Wednesday, 24 July)
• Mike West (Thursday, 18 July)
• Mike West (Thursday, 18 July)
• Boris Zbarsky (Wednesday, 17 July)
• Anne van Kesteren (Wednesday, 17 July)
• Mike West (Wednesday, 17 July)
• Anne van Kesteren (Wednesday, 17 July)
• Taras (Wednesday, 17 July)
• Mike West (Tuesday, 16 July)

Supporting base64 in nonce-value

• Joel Weinberger (Wednesday, 3 July)
• Garrett Robinson (Monday, 1 July)

webappsec-ISSUE-54 (uri vs url): policy-uri vs. policy-url, (also report, etc.) [CSP 1.1]

• Web Application Security Working Group Issue Tracker (Tuesday, 2 July)

Last message date: Monday, 29 July 2013 19:28:01 UTC